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Description 

FIELD OF THE INVENTION 

5 [0Q01] This invention relates to the field of Internet communications, more particularly, to a database system for use 
in dynamically redirecting and filtering Internet traffic. 

BACKGROUND OF THE INVENTION 

w [0002] In prior art systems as shown in FIG. 1 when an Internet user establishes a connection with an Internet Service 
Provider (ISP), the user first makes a physical connection between their computer 1 00 and a dial-up networking server 
102, the user provides to the dial-up networking server their user ID and password. The dial-up networking server then 
passes the user ID and password, along with a temporary Internet Protocol (IP) address for use by the user to the ISP's 
authentication and accounting server 104. A detailed description of the IP communications protocol is discussed in 

is Internetworking with TCP/IP, 3rded., Douglas Comer, Prentice Hall, 1995, which is fully incorporated herein by reference. 
The authentication and accounting server, upon verification of the user ID and password using a database 106 would 
send an authorization message to the dial-up networking server 102 to allow the user to use the temporary IP address 
assigned to that user by the dial-up networking server and then logs the connection and assigned IP address. For the 
duration of that session, whenever the user would make a request to the Internet 1 1 0 via a gateway 1 08, the end user 

20 would be identified by the temporarily assigned IP address. 

[0003] The redirection of Internet traffic is most often done with World Wide Web (WWW) traffic (more specifically, 
traffic using the HTTP (hypertext transfer protocol)). However, redirection is not limited to WWW traffic, and the concept 
is valid for all IP services. To illustrate how redirection is accomplished, consider the following example, which redirects 
a user's request for a WWW page (typically an html (hypertext markup language) file) to some other WWW page. First, 

25 the user instructs the WWW browser (typically software running on the user's PC) to access a page on a remote WWW 
server by typing in the URL (universal resource locator) or clicking on a URL link. Note that a URL provides information 
about the communications protocol, the location of the server (typically an Internet domain name or IP address), and 
the location of the page on the remote server. The browser next sends a request to the server requesting the page. In 
response to the user's request, the web server sends the requested page to the browser. The page, however, contains 

so html code instructing the browser to request some other WWW page - hence the redirection of the user begins. The 
browser then requests the redirected WWW page according to the URL contained in the first page's html code. Alternately, 
redirection can also be accomplished by coding the page such that it instructs the browser to run a program, like a Java 
applet or the like, which then redirects the browser. One disadvantage with current redirection technology is that control 
of the redirection is at the remote end, or WWW server end - and not the local, or user end. That is to say that the 

35 redirection is performed by the remote server, not the user's local gateway. 

[0004] Filtering packets at the Internet Protocol (IP) layer has been possible using a firewall device or other packet 
filtering device for several years. Although packet filtering is most often used to filter packets coming into a private 
network for security purposes, once properly programed, they can filter outgoing packets sent from users to a specific 
destination as well. Packet filtering can distinguish, and filter based on, the type of IP service contained within an IP 

40 packet. For example, the packet filter can determine if the packet contains FTP (file transfer protocol) data, WWW data, 
or Telnet session data. Service identification is achieved by identifying the terminating port number contained within 
each IP packet header. Port numbers are standard within the industry to allow for interoperability between equipment. 
Packet filtering devices allow network administrators to filter packets based on the source and/or destination information, 
as well as on the type of service being transmitted within each IP packet. Unlike redirection technology, packet filtering 

45 technology allows control at the local end of the network connection, typically by the network administrator. However, 
packet filtering is very limited because it is static. Once packet filtering rule sets are programed into a firewall or other 
packet filter device, the rule set can only be changed by manually reprogramming the device. 

[0005] Packet filter devices are often used with proxy server systems, which provide access control to the Internet 
and are most often used to control access to the world wide web. In a typical configuration, a firewall or other packet 

50 filtering device filters all WWW requests to the Internet from a local network, except for packets from the proxy server. 
That is to say that a packet filter or firewall blocks all traffic originating from within the local network which is destined 
for connection to a remote server on port 80 (the standard WWW port number). However, the packet filter or firewall 
permits such traffic to and from the proxy server. Typically, the proxy server is programed with a set of destinations that 
are to be blocked, and packets destined for blocked addresses are not forwarded. When the proxy server receives a 

55 packet, the destination is checked against a database for approval. If the destination is allowed, the proxy server simply 
forwards packets between the local user and the remote server outside the firewall. However, proxy servers are limited 
to either blocking or allowing specific system terminals access to remote databases. 

[0006] A recent system is disclosed in U.S. patent No. 5,696,898. This patent discloses a system, similar to a proxy 
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server, that allows network administrators to restrict specific IP addresses inside a firewall from accessing information 
from certain public or otherwise uncontrolled databases (i.e., the WWW/Internet). According to the disclosure, the system 
has a relational database which allows network administrators to restrict specific terminals, or groups of terminals, from 
accessing certain locations. Similarly limited as a proxy server, this invention can only block or allow terminals' access 
5 to remote sites. This system is also static in that rules programmed into the database need to be reprogramming in order 
to change which locations 

[0007] EP-A-0854621 discloses a system and method for providing peer-level access control, wherein the local rule 
base of a peeris dynamically loaded into afilterwhen peer is authenticated and ejected when the peer loses authentication. 
WO-A-9826548 discloses a device which uses an automatic configuration process to handle the task of configuring the 

10 device like a customer site for communication with the internet. 

[0008] The present invention set out in the claims allows for creating and implementing dynamically changing rules 
to allow the redirection, blocking, or allowing, of specific data traffic for specific users, as a function of database entries 
and the user's activity. In certain embodiments according to the present invention, when the user connects to the local 
network, as in the prior art system, the user's ID and password are sent to the authentication accounting server. The 

is user ID and password are checked against information in an authentication database. The database also contains 
personalized filtering and redirection information for the particular user ID. During the connection process, the dial-up 
network server provides the authentication accounting server with the IP address that is going to be temporarily assigned 
to the user. The authentication accounting serverthen sends both the user's temporary IP address and all of the particular 
user's filter and redirection information to a redirection server. The IP address temporarily assigned to the end user is 

20 then sent back to the end user for use in connecting to the network. 

[0009] Once connected to the network, all data packets sent to, or received by, the user include the user's temporary 
IP address in the IP packet header. The redirection server uses the filter and redirection information supplied by the 
authentication accounting server, for that particular IP address, to either allow packets to pass through the redirection 
server unmolested, block the request all together, or modify the request according to the redirection information. 

25 [0010] When the userterminates the connection with the network, the dial-up networkserver informs the authentication 
accounting server, which in turn, sends a message to the redirection server telling it to remove any remaining filtering 
and redirection information for the terminated user's temporary IP address. This then allows the dial-up network to 
reassign that IP address to another user. In such a case, the authentication accounting server retrieves the new user's 
filter and redirection information from the database and passes it, with the same IP address which is now being used 

so by a different user, to the redirection server. This new user's filter may be different from the first user's filter. 

FIG. 1 is a block diagram of a typical Internet Service Provider environment. 

FIG. 2 is a block diagram of an embodiment of an Internet Service Provider environment with integrated redirection 
system. 

35 

[0011] In the following embodiments of the invention, common reference numerals are used to represent the same 
components. If the features of an embodiment are incorporated into a single system, these components can be shared 
and perform all the functions of the described embodiments. 

[0012] FIG 2. shows a typical Internet Service Provider (ISP) environment with integrated user specific automatic data 
40 redirection system. In atypical use of the system, a user employs a personal computer (PC) 100, which connects to the 
network. The system employs: a dial-up network server 102, an authentication accounting server 204, a database 206 
and a redirection server 208. 

[0013] The PC 1 00 first connects to the dial-up networkserver 1 02. The connection is typically created using a computer 
modem, however a local area network (LAN) or other communications link can be employed. The dial-up networkserver 

45 102 is used to establish a communications link with the user's PC 100 using a standard communications protocol. In 
the preferred embodiment Point to Point Protocol (PPP) is used to establish the physical link between the PC 100 and 
the dial-up network server 1 02, and to dynamically assign the PC 1 00 an IP address from a list of available addresses. 
However, other embodiments may employ different communications protocols, and the IP address may also be perma- 
nently assigned to the PC 100. Dial-up network servers 102, PPP and dynamic IP address assignment are well known 

50 in the art. 

[001 4] An authentication accounting server with Auto-Navi component (hereinafter, authentication accounting server) 
204 is used to authenticate user ID and permit, or deny, access to the network. The authentication accounting server 
204 queries the database 206 to determine if the user ID is authorized to access the network. If the authentication 
accounting server 204 determines the user ID is authorized, the authentication accounting server 204 signals the dial- 
55 up networkserver 1 02 to assign the PC 1 00 an IP address, and the Auto-Navi component of the authentication accounting 
server 204 sends the redirection server 208 (1) the filter and redirection information stored in database 206 for that user 
ID and (2) the temporarily assigned IP address for the session. One example of an authentication accounting server is 
discussed in U.S. Patent No. 5,845,070, which is fully incorporated here by reference. Other types of authentication 
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accounting servers are known in the art. However, these authentication accounting servers lack an Auto-Navi component. 
[0015] The system described herein operates based on user Id's supplied to it by a computer. Thus the system does 
not "know" who the human being "user" is at the keyboard of the computer that supplies a user ID. However, for the 
purposes of this detailed description, "user" will often be used as a short hand expression for "the person supplying 
5 inputs to a computer that is supplying the system with a particular user ID." 

[001 6] The database 206 is a relational database which stores the system data. FIG. 3 shows one embodiment of the 
database structure. The database, in the preferred embodiment, includes the following fields: a user account number, 
the services allowed or denied each user (for example: e-mail, Telnet, FTP, WWW), and the locations each user is 
allowed to access. 

10 [0017] Rule sets are employed by the system and are unique for each user ID, or a group of user ID's. The rule sets 
specify elements or conditions about the user's session. Rule sets may contain data about a type of service which may 
or may not be accessed, a location which may or may not be accessed, how long to keep the rule set active, under what 
conditions the rule set should be removed, when and how to modify the rule set during a session, and the like. Rule sets 
may also have a preconfigured maximum lifetime to ensure their removal from the system. 

15 [001 8] The redirection server 208 is logically located between the user's computer 1 00 and the network, and controls 
the user's access to the network. The redirection server 208 performs all the central tasks of the system. The redirection 
server 208 receives information regarding newly established sessions from the authentication accounting server 204. 
The Auto-Navi component of the authentication accounting server 204 queries the database for the rule set to apply to 
each new session, and forwards the rule set and the currently assigned IP address to the redirection server 208. The 

20 redirection server 208 receives the IP address and rule set, and is programed to implement the rule set for the IP address, 
as well as other attendant logical decisions such as: checking data packets and blocking or allowing the packets as a 
function of the rule sets, performing the physical redirection of data packets based on the rule sets, and dynamically 
changing the rule sets based on conditions. When the redirection server 208 receives information regarding aterminated 
session from the authentication accounting server 204, the redirection server 208 removes any outstanding rule sets 

25 and information associated with the session. The redirection server 208 also checks for and removes expired rule sets 
from time to time. 

[0019] In an alternate embodiment, the redirection server 208 reports all or some selection of session information to 
the database 206. This information may then be used for reporting, or additional rule set generation. 

so System Features Overview 

[0020] In the present embodiment, each specific user may be limited to, or allowed, specific IP services, such as 
WWW, FTP and Telnet. This allows a user, for example, WWW access, but not FTP access or Telnet access. A user's 
access can be dynamically changed by editing the user's database record and commanding the Auto-Navi component 
35 of the authentication accounting server 204 to transmit the user's new rule set and current IP address to the redirection 
server 208. 

[0021] A user's access can be "locked" to only allow access to one location, or a set of locations, without affecting 
other users' access. Each time a locked user attempts to access another location, the redirection server 208 redirects 
the user to a default location. In such a case, the redirection server 208 acts either as proxy for the destination address, 
40 or in the case of WWW traffic the redirection server 208 replies to the user's request with a page containing a redirection 
command. 

[0022] A user may also be periodically redirected to a location, based on a period of time or some other condition. For 
example, the user will first be redirected to a location regardless of what location the user attempts to reach, then 
permitted to access other locations, but every ten minutes the user is automatically redirected to the first location. The 
45 redirection server 208 accomplishes such a rule set by setting an initial temporary rule set to redirect all traffic; after the 
user accesses the redirected location, the redirection server then either replaces the temporary rule set with the user's 
standard rule set or removes the rule set altogether from the redirection server 208. After a certain or variable time 
period, such as ten minutes, the redirection server 208 reinstates the rule set again. 
[0023] The following steps describe details of a typical user session: 

50 

• A user connects to the dial-up network server 1 02 through computer 1 00. 

• The user inputs user ID and password to the dial-up network server 1 02 using computer 1 00 which forwards the 
information to the authentication accounting server 204 

* The authentication accounting server 204 queries database 206 and performs validation check of user ID and 
55 password. 

♦ Upon a successful user authentication, the dial-up network server 102 completes the negotiation and assigns an 
IP address to the user. Typically, the authentication accounting server 204 logs the connection in the database 206. 
•The Auto-Navi component of the authentication accounting server 204 then sends both the user's rule set (contained 
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in database 206) and the user's IP address (assigned by the dial-up networkserver 1 02) in realtime to the redirection 
server 208 so that it can filter the user's IP packets. 

• The redirection server 208 programs the rule set and IP address so as to control (filter, block, redirect, and the 
like) the user's data as a function of the rule set. 

5 

[0024] The following is an example of a typical user's rule set, attendant logic and operation: 

[0025] If the rule set for a particular user (i.e., user UserlD-2) was such as to only allow that user to access the web 
site www.us.com, and permit Telnet services, and redirect all web access from any server at xyz.com to www.us.com, 
then the logic would be as follows: 
w [0026] The database 206 would contain the following record for user UserlD-2: 



ID UserID-2 
15 Password: secret 

a a u n it it it ti tt i% if tt tt tt tt it 
### Rule Sets ### 
tffiiHtttti II f i ll If IH Hf-tHHi 

2q " >' " " ' ' " " " it tt 'Tit TT Tt 11 TT 

#service rule expire 
http www.us.com 0 

http *.xyz.com=> www.us.com 0 

25 

♦ the user initiates a session, and sends the correct user ID and password (UserlD-2 and secret) to the dial-up 
network server 102. As both the user ID and password are correct, the authentication accounting server 204 au- 
thorizes the dial-up network server 1 02 to establish a session. The dial-up network server 1 02 assigns UserlD-2 an 

so |p address (for example, 1 0.0.0.1 ) to the user and passes the IP address to the authentication accounting server204. 

♦ The Auto-Navi component of the authentication accounting server 204 sends both the user's rule setandthe user's 
IP address (10.0.0.1) to the redirection server 208. 

35 ♦ The redirection server 208 programs the rule set and IP address so as to filter and redirect the user's packets 

according to the rule set. The logic employed by the redirection server 208 to implement the rule set is as follows: 



IF source IP-address = 10.0.0.1 AND 

40 

( ((request type = HTTP) AND (destination address = www.us.com) ) OR 

(request type = Telnet) 
) THEN ok. 

45 

IF source IP-address = 10.0.0.1 AND 

( (request type = HTTP) AND (destination address = *. xyz.com) 
) THEN (redirect ~ www.us.com) 

50 

[0027] The redirection server 208 monitors all the IP packets, checking each against the rule set. In this situation, if 
IP address 1 0.0.0.1 (the address assigned to user ID UserlD-2) attempts to send a packet containing HTTP data (i.e., 
attempts to connect to port 80 on any machine within the xyz.com domain) the traffic is redirected by the redirection 
55 server 208 to www.us.com. Similarly, if the user attempts to connect to any service other then HTTP at www.us.com or 
Telnet anywhere, the packet will simply be blocked by the redirection server 208. 

[0028] When the user logs out or disconnects from the system, the redirection server will remove all remaining rule sets. 
[0029] The following is another example of a typical user's rule set, attendant logic and operation: 
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[0Q30] If the rule set for a particular user (i.e., user UserlD-3) was to force the user to visit the web site www.widget- 
sell.com, first, then to have unfettered access to other web sites, then the logic would be as follows: 

The database 206 would contain the following record for user UserlD-3: 

5 

ID UserID-3 
Password: top-secret 

10 

If ttf tM iAUll II ULLil 11 11 1111 H 
ft fttrfTit tPfftt tf~t1 tf ff ft tt tt ft 

### Rule Sets ### 

15 #service rule expire 

http *=>www. widgetsell.com Ix 



20 »the user initiates a session, and sends the correct user ID and password (UserlD-3 and top-secret) to the dial- 

up network server 1 02. As both the user ID and password are correct, the authentication accounting server 204 
authorizes the dial-up network server 1 02 to establish a session. The dial-up network server 1 02 assigns user 
ID 3 an IP address (for example, 10.0.0.1) to the user and passes the IP address to the authentication accounting 
server 204. 

25 

• The Auto-Navi component of the authentication accounting server 204 sends both the user's rule set and the 
user's IP address (10.0.0.1) to the redirection server 208. 

• The redirection server 208 programs the rule set and I P address so as to filter and redirect the user's packets 
so according to the rule set. The logic employed by the redirection server 208 to implement the rule set is as follows: 

IF source IP-address = 10.0.0.1 AND 

(request type = HTTP) THEN (redirect = www.widgetsell.com) 

35 

THEN SET NEW RULE 
IF source IP-address = 1 0.0.0. 1 AND 
40 (request type = HTTP) THEN ok. 

[0031] The redirection server 208 monitors all the IP packets, checking each against the rule set. In this situation, if 
IP address 1 0.0.0.1 (the address assigned to user ID UserlD-3) attempts to send a packet containing HTTP data (i.e., 

45 attempts to connect to port 80 on any machine) the traffic is redirectedbytheredirectionserver208towww.widgetsell.com. 
Once this is done, the redirection server 208 will remove the rule set and the user if free to use the web unmolested. 
[0032] When the user logs out or disconnects from the system, the redirection server will remove all remaining rule sets. 
[0033] In an alternate embodiment a user may be periodically redirected to a location, based on the number of other 
factors, such as the number of locations accessed, the time spent at a location, the types of locations accessed, and 

50 other such factors. 

[0034] A user's accountcan also be disabled afterthe user has exceeded a length of time. The authentication accounting 
server 204 keeps track of user's time online. Prepaid use subscriptions can thus be easily managed by the authentication 
accounting Server 204. 

[0035] In yet another embodiment, signals from the Internet 1 1 0 side of redirection server 208 can be used to modify 
55 rule sets being used by the redirection server. Preferably, encryption and/or authentication are used to verify that the 
server or other computer on the Internet 1 10 side of redirection server 208 is authorized to modify the rule set or rule 
sets that are being attempted to be modified. An example of this embodiment is where it is desired that a user be 
redirected to a particular web site until the fill out a questionnaire or satisfy some other requirement on such a web site. 
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In this example, the redirection server redirects a user to a particular web site that includes a questionnaire. After this 
web site receives acceptable data in all required fields, the web site then sends an authorization to the redirection server 
that deletes the redirection to the questionnaire web site from the rule set for the user who successfully completed the 
questionnaire. Of course, the type of modification an outside server can make to a rule set on the redirection server is 
5 not limited to deleting a redirection rule, but can include any other type of modification to the rule set that is supported 
by the redirection server as discussed above. 

[0036] It will be clear to one skilled in the art that the invention may be implemented to control (block, allow and redirect) 
any type of service, such as Telnet, FTP, WWW and the like. The invention is easily programmed to accommodate new 
services or networks and is not limited to those services and networks (e.g., the Internet) now know in the art. 

w [0037] It will also be clear that the invention may be implemented on a non-l P based networks which implement other 
addressing schemes, such as IPX, MAC addresses and the like. While the operational environment detailed in the 
preferred embodiment is that of an ISP connecting users to the Internet, it will be clear to one skilled in the art that the 
invention may be implemented in any application where control over users' access to a network or network resources 
is needed, such as a local area network, wide area network and the like. Accordingly, neither the environment nor the 

is communications protocols are limited to those discussed. 



Claims 

20 1. A redirection server (208) connectable between a user computer (100) and a public network (110), the redirection 
server programmed with a user's rule set correlated to a temporarily assigned network address for the user computer, 
wherein the rule set contains at least one of a plurality of functions used to control the data passing between the 
user computer and the public network, the redirection server charcterised by being configured to allow modification 
of at least a portion of the rule set in the redirection server while the rule set remains correlated to the temporarily 

25 assigned network address. 

2. The redirection server of claim 1 , wherein the redirection server (208) is configured to allow modification of at least 
a portion of the rule set as a function of time. 

so 3. The redirection server of claim 1 , wherein the redirection server (208) is configured to allow modification of at least 
a portion of the rule set as a function of the data transmitted to or from the user. 

4. The redirection server of claim 1 , wherein the redirection server (208) is configured to allow modification of at least 
a portion of the rule set as a function of the location or locations the user access. 

35 

5. The redirection server of claim 1 , wherein the redirection server (208) is configured to allow modification of at least 
a portion of the rule set as a function of some combination of time, data transmitted to or from the user, or location 
or locations the user access. 

40 6. The redirection server of claim 1, wherein the redirection server (208) is configured to allow the removal or rein- 
statement of at least a portion of the rule set as a function of time. 

7. The redirection server of claim 1, wherein the redirection server (208) is configured to allow the removal or rein- 
statement of at least a portion of the rule set as a function of the data transmitted to or from the user. 

45 

8. The redirection server of claim 1, wherein the redirection server (208) is configured to allow the removal or rein- 
statement of at least a portion of the rule set as a function of the location or locations the user access. 

9. The redirection server of claim 1, wherein the redirection server (208) is configured to allow the removal or rein- 
50 statement of at least a portion of the rule set as a function of some combination of time, data transmitted to or from 

the user, or location or locations the user access. 

10. The redirection server of claim 1 , wherein the redirection server (208) further blocks the data to and from the user 
computer (1 00) as a function of the rule set. 

55 

11. The redirection server of claim 1 , wherein the redirection server (208) further allows the data to and from the user 
computer (1 00) as a function of the rule set. 



7 



EP 1 076 975 B1 



1 2. The redirection server of claim 1 , wherein the redirection server (208) further redirects the data to and from the user 
computer (1 00) as a function of the rule set. 

1 3. The redirection server of claim 12, wherein the redirection server (208) redirects data from the user computer (1 00) 
by replacing a destination address in data sent from the user computer with a different destination address before 
the data is passed to the public network (1 1 0). 

14. The redirection server of claim 1, wherein the redirection server (208) further redirects the data from the user 
computer (1 00) to multiple destinations as a function of the rule set. 

1 5. A method for use in a redirection server (208) connected between a user computer (1 00) and a public network (1 1 0), 
the redirection server containing a user's rule set correlated to a temporarily assigned network address for the user 
computer wherein the user's rule set contains at least one of a plurality of functions used to control the data passing 
the user computer and the public network; the method characterised by: 

modifying at least a portion of the user's rule set in the redirection server while the user's rule set remains 
correlated to the temporarily assigned network address. 

16. The method of claim 15, further including the step of blocking the data to and from the user computer (100) as a 
function of the user's rule set. 

17. The method of claim 15, further including the step of allowing the data to and from the user computer (100) as a 
function of the user's rule set. 

1 8. The method of claim 1 5, further including the step of redirecting the data to and from the user computer (1 00) as a 
function of the user's rule set. 

19. The method of claim 18, wherein the step of redirecting the data from the user computer (1 00) comprises replacing 
a destination address in data sent from the user computer with a different destination address before the data is 
passed to the public network (1 1 0). 

20. The method of claim 15, further including the step of redirecting the data from the user computer (100) to multiple 
destinations a function of the user's rule set. 

21. The method of claim 15, further including the step of modifying at least a portion of the rule set as a function of time. 

22. The method of claim 15 or claim 21 , further including the step of modifying at least a portion of the rule set as a 
function of the data transmitted to or from the user. 

23. The method of any of claims 15, 21 and 22, further including the step of modifying at least a portion of the rule set 
as a function of the location or locations the user access. 

24. The method of claim 15, further including the step of removing or reinstating at least a portion of the user's rule set 
as a function of time. 

25. The method of claim 15 or claim 24, further including the step of removing or reinstating at least a portion of the 
user's rule set as a function of the data transmitted to or from the user. 

26. The method of any of claims 15, 24 and 25, further including the step of removing or reinstating at least a portion 
of the user's rule set as a function of the location or locations the user access. 



Patentanspriiche 

1. Umleitungsserver (208), der zwischen einem Benutzercomputer (100) und einem offentlichen Netz (110) 
anschlieBbarist, wobei der Umleitungsserver mit einem Benutzer-Regelsatzprogrammiert ist, dermiteinertemporar 
zugeordneten Netzadressefurden Benutzercomputer korreliert ist, wobei der Regelsatzzumindesteine einer Mehr- 
zahl von Funktionen enthalt, diezum Kontrollieren der zwischen dem Benutzercomputer und dem offentlichen Netz 
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ubermittelten Daten verwendetwird, wobei derUmleitungsserverdadurch gekennzeichnetist,dass ereingerichtet 
ist, urn eine Modifikation zumindest eines Teils des Regelsatzes im Umleitungsserver zu ermoglichen, wahrend der 
Regelsatz mit der temporar zugeordneten Netzadresse korreliert bleibt. 

5 2. Umleitungsserver nach Anspruch 1 , wobei der Umleitungsserver (208) eingerichtet ist, um eine Modifikation zumin- 
dest eines Teils des Regelsatzes als Funktion der Zeit zu ermoglichen. 

3. Umleitungsserver nach Anspruch 1 , wobei der Umleitungsserver (208) eingerichtet ist, um eine Modifikation zumin- 
dest eines Teils des Regelsatzes als Funktion dervom Benutzeroderan diesen ubertragenen zu Daten ermoglichen. 

10 

4. Umleitungsserver nach Anspruch 1 , wobei der Umleitungsserver (208) eingerichtet ist, um eine Modifikation zumin- 
dest eines Teils des Regelsatzes als Funktion des Orts oder der Orte, auf den bzw. die der Benutzer zugreift, zu 
ermoglichen. 

is 5. Umleitungsserver nach Anspruch 1 , wobei der Umleitungsserver (208) eingerichtet ist, um eine Modifikation zumin- 
dest eines Teils des Regelsatzes als Funktion einerKombination ausZeit, vom Benutzeroderan diesen ubertragenen 
Daten oder dem Ort oder den Orten, auf den bzw. die der Benutzer zugreift, zu ermoglichen. 

6. Umleitungsserver nach Anspruch 1, wobei der Umleitungsserver (208) eingerichtet ist, um die Entfernung oder 
20 Wiederherstellung zumindest eines Teils des Regelsatzes als Funktion der Zeit zu ermoglichen. 

7. Umleitungsserver nach Anspruch 1, wobei der Umleitungsserver (208) eingerichtet ist, um die Entfernung oder 
Wiederherstellung zumindest eines Teils des Regelsatzes als Funktion dervom Benutzer oder an diesen ubertra- 
genen Daten zu ermoglichen. 

25 

8. Umleitungsserver nach Anspruch 1, wobei der Umleitungsserver (208) eingerichtet ist, um die Entfernung oder 
Wiederherstellung zumindest eines Teils des Regelsatzes als Funktion des Orts oder der Orte, auf den bzw. die 
der Benutzer zugreift, zu ermoglichen. 

so 9. Umleitungsserver nach Anspruch 1, wobei der Umleitungsserver (208) eingerichtet ist, um die Entfernung oder 
Wiederherstellung zumindest eines Teils des Regelsatzes als Funktion einer Kombination aus Zeit, vom Benutzer 
oder an diesen ubertragenen Daten oder dem Ort oder den Orten, auf den bzw. die der Benutzer zugreift, zu 
ermoglichen. 

35 10. Umleitungsserver nach Anspruch 1 , wobei der Umleitungsserver (208) weiters die Daten zum und vom Benutzer- 
computer (100) als Funktion des Regelsatzes blockiert. 

11. Umleitungsserver nach Anspruch 1 , wobei der Umleitungsserver (208) weiters die Daten zum und vom Benutzer- 
computer (1 00) als Funktion der Regelsatzes zulasst. 

40 

12. Umleitungsserver nach Anspruch 1 , wobei der Umleitungsserver (208) weiters die Daten zum und vom Benutzer- 
computer (100) als Funktion des Regelsatzes umleitet. 

13. Umleitungsserver nach Anspruch 12, wobei der Umleitungsserver (208) Daten vom Benutzercomputer (1 00) durch 
45 Ersetzen derZieladresse in den vom Benutzercomputer gesendeten Daten durch eine andere Zieladresse umleitet, 

bevor die Daten in das offentliche Netzwerk (1 10) gelangen. 

14. Umleitungsserver nach Anspruch 1, wobei der Umleitungsserver (208) weiters die Daten vom Benutzercomputer 
(100) als Funktion des Regelsatzes auf mehrere Ziele umleitet. 

50 

15. Verfahren zur Verwendung in einem Umleitungsserver (208), der zwischen einem Benutzercomputer (100) und 
einem offentlichen Netz (110) anschlieRbar ist, wobei der Umleitungsserver einen Benutzer-Regelsatz enthalt, der 
miteinertemporarzugeordneten Netzadresse furden Benutzercomputer korreliert ist, wobei der Benutzer-Regelsatz 
zumindest eine einer Mehrzahl von Funktionen enthalt, die zum Kontrollieren der zwischen dem Benutzercomputer 

55 und dem offentlichen Netz ubermittelten Daten verwendet wird; wobei das Verfahren gekennzeichnet ist durch: 

Modifizieren zumindest eines Teils des Benutzer-Regelsatzes im Umleitungsserver, wahrend der Benutzer- 
Regelsatz mit der temporar zugeordneten Netzadresse korreliert bleibt. 
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16. Verfahren nach Anspruch 15, weiters mit dem Schritt des Blockierens der Daten zum und vom Benutzercomputer 
(100) als Funktion des Benutzer-Regelsatzes. 

17. Verfahren nach Anspruch 15, weiters mit dem Schritt des Zulassens von Daten zum und vom Benutzercomputer 
(100) als Funktion des Benutzer-Regelsatzes. 

18. Verfahren nach Anspruch 15, weiters mit dem Schritt des Umleitens der Daten zum und vom Benutzercomputer 
(100) als Funktion des Benutzer-Regelsatzes. 

1 9. Verfahren nach Anspruch 1 8, wobei der Schritt des Umleitens der Daten vom Benutzercomputer (1 00) das Ersetzen 
einerZieladresse in den vom Benutzercomputer gesendeten Daten durch eine andere Zieladresse, bevor die Daten 
in das offentliche Netz (110) gelangen, umfasst. 

20. Verfahren nach Anspruch 15, weiters mit dem Schritt des Umleitens der Daten vom Benutzercomputer (100) zu 
mehreren Zielen als Funktion des Benutzer-Regelsatzes. 

21. Verfahren nach Anspruch 15, weiters mit dem Schritt des Modifizierens zumindest eines Teils des Regelsatzes als 
Funktion der Zeit. 

22. Verfahren nach Anspruch 15 oder21, weiters mit dem Schritt des Modifizierens zumindest eines Teils des Regel- 
satzes als Funktion der zum Oder vom Benutzer ubertragenen Daten. 

23. Verfahren nach einem der Anspruche 15, 21 und 22, weiters mit dem Schritt des Modifizierens zumindest eines 
Teils des Regelsatzes als Funktion des Orts oder der Orte, auf den bzw. die der Benutzer zugreift. 

24. Verfahren nach Anspruch 15, weiters mit dem Schritt des Entfernens oder Wiederherstellens zumindest eines Teils 
des Benutzer-Regelsatzes als Funktion der Zeit. 

25. Verfahren nach Anspruch 15 oder 24, weiters mit dem Schritt des Entfernens oder Wiederherstellens zumindest 
eines Teils des Benutzer-Regelsatzes als Funktion der zum oder vom Benutzer ubertragenen Daten. 

26. Verfahren nach einem der Anspruche 15, 24 und 25, weiters mit dem Schritt des Entfernens oder Wiederherstellens 
zumindest eines Teils des Benutzer-Regelsatzes als Funktion des Orts oder der Orte, auf den bzw. die der Benutzer 
zugreift. 



Revendi cations 

1. Serveur de reacheminement (208) pouvant etre connecte entre un ordinateur d'utilisateur (100) et un reseau public 
(110), le serveur de reacheminement etant programme avec un ensemble de regies d'un utilisateur correle a une 
adresse de reseau assignee temporairement pour I'ordinateurd'utilisateur, dans lequel I'ensemble de regies contient 
au moins Tune d'une pluralite de fonctions utilisees pour commander les donnees passant entre I'ordinateur d'uti- 
lisateur et le reseau public, le serveur de reacheminement etant caracterise en ce qu'il est configure pour permettre 
la modification d'au moins une partie de I'ensemble de regies dans le serveur de reacheminement alors que I'en- 
semble de regies reste correle a I'adresse de reseau assignee temporairement. 

2. Serveur de reacheminement selon la revendication 1 , dans lequel le serveur de reacheminement (208) est configure 
pour permettre la modification d'au moins une partie de I'ensemble de regies en fonction du temps. 

3. Serveur de reacheminement selon la revendication 1 , dans lequel le serveur de reacheminement (208) est configure 
pour permettre la modification d'au moins une partie de I'ensemble de regies en fonction des donnees transmises 
a destination ou en provenance de I'utilisateur. 

4. Serveur de reacheminement selon la revendication 1 , dans lequel le serveur de reacheminement (208) est configure 
pour permettre la modification d'au moins une partie de I'ensemble de regies en fonction de I'emplacement ou des 
emplacements de I'acces d'utilisateur. 



5. 



Serveur de reacheminement selon la revendication 1 , dans lequel le serveur de reacheminement (208) est configure 
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pour permettre la modification d'au moins une partie de I'ensemble de regies en fonction d'une certaine combinaison 
de temps, de donnees transmises a destination ou en provenance de I'utilisateur, ou de I'emplacement ou des 
emplacements de I'acces d'utilisateur 

5 6. Serveur de reacheminement selon la revendication 1 , dans lequel le serveur de reacheminement (208) est configure 
pour permettre la suppression ou le retablissement d'au moins une partie de I'ensemble de regies en fonction du 
temps. 

7. Serveur de reacheminement selon la revendication 1 , dans lequel le serveur de reacheminement (208) est configure 
10 pour permettre la suppression ou le retablissement d'au moins une partie de I'ensemble de regies en fonction des 

donnees transmises a destination ou en provenance de I'utilisateur. 

8. Serveur de reacheminement selon la revendication 1 , dans lequel le serveur de reacheminement (208) est configure 
pour permettre la suppression ou le retablissement d'au moins une partie de I'ensemble de regies en fonction de 

is I'emplacement ou des emplacements de I'acces d'utilisateur. 

9. Serveur de reacheminement selon la revendication 1 , dans lequel le serveur de reacheminement (208) est configure 
pour permettre la suppression ou le retablissement d'au moins une partie de I'ensemble de regies en fonction d'une 
certaine combinaison de temps, de donnees transmises a destination ou en provenance de I'utilisateur, ou de 

20 I'emplacement ou des emplacements de I'acces d'utilisateur. 

10. Serveur de reacheminement selon la revendication 1 , dans lequel le serveur de reacheminement (208) bloque en 
outre les donnees a destination et en provenance de I'ordinateur d'utilisateur (100) en fonction de I'ensemble de 
regies. 

25 

11. Serveur de reacheminement selon la revendication 1 , dans lequel le serveur de reacheminement (208) autorise en 
outre les donnees a destination et en provenance de I'ordinateur d'utilisateur (100) en fonction de I'ensemble de 
regies. 

so 1 2. Serveur de reacheminement selon la revendication 1 , dans lequel le serveur de reacheminement (208) reachemine 
en outre les donnees a destination et en provenance de I'ordinateur d'utilisateur (100) en fonction de I'ensemble 
de regies. 

13. Serveur de reacheminement selon la revendication 12, dans lequel le serveur de reacheminement (208) reachemine 
35 des donnees de I'ordinateurd'utilisateur (1 00) en remplacant une adresse de destination dans les donnees envoyees 

de I'ordinateur d'utilisateur par une adresse de destination differente avant que les donnees ne soient transmises 
au reseau public (110). 

1 4. Serveur de reacheminement selon la revendication 1 , dans lequel le serveur de reacheminement (208) reachemine 
40 les donnees de I'ordinateur d'utilisateur (100) a de multiples destinations en fonction de I'ensemble de regies. 

1 5. Procede destine a une utilisation dans un serveur de reacheminement (208) connecte entre un ordinateur d'utilisateur 
(100) et un reseau public (1 10), le serveur de reacheminement contenant un ensemble de regies d'un utilisateur 
correle a une adresse de reseau assignee temporairement pour I'ordinateur d'utilisateur, dans lequel I'ensemble 

45 de regies de I'utilisateur contient au moins Tune d'une pluralite de fonctions utilisees pour commander les donnees 

passant entre I'ordinateur d'utilisateur et le reseau public, le procede etant caracterise par I'etape consistant a : 

modifier au moins une partie de I'ensemble de regies de I'utilisateur dans le serveur de reacheminement alors 
que I'ensemble de regies de I'utilisateur reste correle a I'adresse de reseau assignee temporairement. 



50 



16. Procede selon la revendication 15, comprenant en outre I'etape consistant a bloquer les donnees a destination et 
en provenance de I'ordinateur d'utilisateur (100) en fonction de I'ensemble de regies de I'utilisateur. 

17. Procede selon la revendication 15, comprenant en outre I'etape consistant a autoriser les donnees a destination et 
en provenance de I'ordinateur d'utilisateur (1 00) en fonction de I'ensemble de regies de I'utilisateur. 

1 8. Procede selon la revendication 1 5, comprenant en outre I'etape consistant a reacheminer les donnees a destination 
eten provenance de I'ordinateurd'utilisateur (100) en fonction de I'ensemble de regies de I'utilisateur. 
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19. Precede selon la revendication 18, dans lequel I'etape de reacheminement des donnees en provenance de I'ordi- 
nateur d'utilisateur (100) comprend le remplacement d'une adresse de destination dans les donnees envoyees de 
I'ordinateur d'utilisateur par une adresse de destination differente avant que les donnees ne soient transmises au 
reseau public (1 1 0). 

20. Procede selon la revendication 1 5, comprenanten outre I'etape consistant a reacheminer les donnees en provenance 
de I'ordinateur d'utilisateur (100) vers de multiples destinations en fonction de I'ensemble de regies de I'utilisateur. 

21. Procede selon la revendication 15, comprenant en outre I'etape consistant a modifier au moins une partie de 
I'ensemble de regies en fonction du temps. 

22. Procede selon la revendication 15 ou la revendication 21, comprenant en outre I'etape consistant a modifier au 
moins une partie de I'ensemble de regies en fonction des donnees transmises a destination ou en provenance de 
I'utilisateur. 

23. Procede selon I'une quelconque des revendications 1 5, 21 et 22, comprenant en outre I'etape consistant a modifier 
au moins une partie de I'ensemble de regies en fonction de remplacement ou des emplacements de Pacces d'uti- 
lisateur. 

24. Procede selon la revendication 15, comprenant en outre I'etape consistant a supprimer ou retablir au moins une 
partie de I'ensemble de regies de I'utilisateur en fonction du temps. 

25. Procede selon la revendication 15 ou la revendication 24, comprenant en outre I'etape consistant a supprimer ou 
retablir au moins une partie de I'ensemble de regies de I'utilisateur en fonction des donnees transmises a destination 
ou en provenance de I'utilisateur. 

26. Procede selon I'une quelconque des revendications 1 5, 24 et25, comprenanten outre I'etape consistant a supprimer 
ou retablir au moins une partie de I'ensemble de regies de I'utilisateur en fonction de Pemplacement ou des empla- 
cements de Pacces d'utilisateur. 
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